Vulnerabilities > Drupal > Shoutbox > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-12-10 | CVE-2007-6298 | Cross-Site Scripting vulnerability in Drupal Shoutbox Cross-site scripting (XSS) vulnerability in the Shoutbox module for Drupal 5.x before Shoutbox 5.x-1.1 allows remote authenticated users to inject arbitrary web script or HTML via Shoutbox block messages. | 4.3 |